漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
N/A
Vulnerability Description
Vulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Event Management). Supported versions that are affected are 13.5 and 24.1. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Enterprise Manager Base Platform. While the vulnerability is in Oracle Enterprise Manager Base Platform, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle Enterprise Manager Base Platform. CVSS 3.1 Base Score 9.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
Oracle Enterprise Manager Base Platform 安全漏洞
Vulnerability Description
Oracle Enterprise Manager Base Platform是美国甲骨文(Oracle)公司的一套本地管理平台。该平台主要用于管理Oracle产品部署。 Oracle Enterprise Manager Base Platform 13.5版本和24.1版本存在安全漏洞,该漏洞源于Event Management组件问题,可能导致权限高的攻击者通过HTTP网络访问,接管产品。
CVSS Information
N/A
Vulnerability Type
N/A